Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/zycfqWu0v9m8sLT3bVF4Dcmgr_s.roa
File: zycfqWu0v9m8sLT3bVF4Dcmgr_s.roa (raw, json)
Hash identifier: aVn7lTKDi9lDaz6qYbHRY+He3NFNfTa9wJ3ZZCX3hsM=
Subject key identifier: CF:27:1F:A9:6B:B4:BF:D9:BC:B0:B4:F7:6D:51:78:0D:C9:A0:AF:FB
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 018567DA1340B92CA537343D73382F5A5E02
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/zycfqWu0v9m8sLT3bVF4Dcmgr_s.roa
Signing time: Sat 31 Dec 2022 11:03:43 +0000
ROA not before: Sat 31 Dec 2022 11:03:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147001
IP address blocks: 109.206.244.0/24 maxlen: 24
85.8.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:67:da:13:40:b9:2c:a5:37:34:3d:73:38:2f:5a:5e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: Dec 31 11:03:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cf271fa96bb4bfd9bcb0b4f76d51780dc9a0affb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ae:11:c2:6e:8f:ce:23:0b:67:8e:21:b0:7f:
2b:c8:38:46:fc:d7:6b:7d:be:e9:f2:0f:b1:a1:19:
d6:ca:ea:ea:61:c0:4d:3c:5c:18:ce:e7:31:0d:d4:
92:57:ca:0a:5e:cb:8a:52:af:13:87:03:b7:54:cc:
c8:af:9f:db:e1:63:bc:e7:90:5a:fd:27:58:ab:2f:
88:6b:37:23:d5:50:07:20:9e:1b:81:62:6c:2f:52:
41:42:9e:c7:4c:44:fb:13:84:53:41:ed:da:a3:0b:
35:3b:87:bf:4a:89:8d:9b:d7:8e:2a:1d:42:cf:06:
70:69:69:87:2a:57:21:c7:92:e7:99:d7:d1:75:e8:
d6:33:19:52:8f:65:43:51:24:06:ac:3a:cc:94:8a:
ba:21:59:13:c8:bf:2d:60:d4:60:0e:63:5c:fc:5f:
bc:ac:9b:2f:cc:b8:61:98:60:fb:78:f1:39:d4:7d:
bd:c7:4e:a0:3b:3c:b9:87:84:9e:82:d7:53:0e:38:
3c:e1:aa:aa:10:7b:5d:54:62:27:70:d5:87:4f:39:
24:d3:ee:22:12:ef:a7:a5:60:ed:7a:e9:07:de:7f:
9d:8d:3c:db:2d:92:a6:a0:69:78:e6:5d:50:12:ad:
83:ae:e8:44:23:38:3c:a3:5a:ce:32:93:ed:35:b1:
8f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:27:1F:A9:6B:B4:BF:D9:BC:B0:B4:F7:6D:51:78:0D:C9:A0:AF:FB
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/zycfqWu0v9m8sLT3bVF4Dcmgr_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.8.180.0/23
109.206.244.0/24
Signature Algorithm: sha256WithRSAEncryption
34:b4:07:2d:6b:af:4b:03:be:c8:48:a6:f2:e4:c8:d1:5c:a9:
75:89:1e:36:1f:6a:33:be:62:c5:59:ce:c4:57:4a:31:07:a2:
d2:e5:7a:4a:21:08:bd:13:74:cb:17:a2:84:17:02:2b:2f:33:
17:7e:e9:0d:bf:cf:7a:a8:4f:40:b3:52:c2:be:1c:10:fa:db:
14:d7:42:a2:50:ed:b9:cf:46:58:01:dd:25:ff:87:aa:2c:4c:
5b:7c:b3:d0:d7:54:f3:e6:3b:39:ae:56:2c:df:ee:b0:2f:c7:
4e:0c:45:c4:05:5b:5c:04:b6:be:cf:8c:8f:5b:9f:b5:51:56:
7f:3f:d6:6e:49:e6:28:21:81:e6:fb:97:9e:c1:f1:4e:a9:db:
15:6f:c1:a5:a1:30:06:1d:25:75:dd:1b:97:04:7a:a9:45:b9:
47:71:55:3e:a7:46:4e:71:62:be:8f:a9:c0:25:39:7b:c7:b1:
08:8f:c1:01:ce:dc:5e:23:df:77:3b:a6:e0:98:33:05:95:94:
f2:ad:88:39:85:93:98:6b:b3:a9:00:80:45:e7:b5:0d:83:8e:
e7:a5:ef:62:aa:ed:31:0f:11:46:84:56:46:67:c9:cd:b3:3e:
c8:2a:af:fb:f0:85:f2:3a:3c:c8:14:ab:a7:e1:54:95:b0:cb:
76:4f:20:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:23 2025 by rpki-client